CN102812773B - The method and apparatus accessed for local network - Google Patents
The method and apparatus accessed for local network Download PDFInfo
- Publication number
- CN102812773B CN102812773B CN201180015395.7A CN201180015395A CN102812773B CN 102812773 B CN102812773 B CN 102812773B CN 201180015395 A CN201180015395 A CN 201180015395A CN 102812773 B CN102812773 B CN 102812773B
- Authority
- CN
- China
- Prior art keywords
- home network
- registration
- access
- network
- uid
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W80/00—Wireless network protocols or protocol adaptations to wireless operation
- H04W80/04—Network layer protocols, e.g. mobile IP [Internet Protocol]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W28/00—Network traffic management; Network resource management
- H04W28/16—Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service]
Abstract
A kind of method for home network being expanded to mobile device.FA (Foreign Agent) in mobile device is preferably registered by the static UID (unique identifier) of exchange and certificate HA (local agent) in home network.HA creates the address for FA, and safeguards the registration table for listing all FA of registration.Major part situation in, when FA not remote carry out the assembly operating and being directly connected to home network time, perform FA registration.HA registers to SG (SGW) in a secure manner and waits the request for accessing home network.After registering to SG, HA initiates the heartbeat message confirmed by SG.When receiving FA access request from SG, HA, before license or refusal access, determines whether this FA limits to HA registration and the most available access.
Description
Cross-Reference to Related Applications
It relates to and require " Extending that submit, entitled on March 23rd, 2010
The In-Home Layer 2Network " U.S. Provisional Patent Application Serial No. 61/316,553
Priority, by the way of reference, the complete content of this application is expressly incorporated herein.
Technical field
Present invention relates generally to communication network field, and more particularly to being easy to order
Family remotely accesses the method and apparatus of the communication network in family.
Background technology
Introductory information will be provided now.However, it is noted that have herein been described as existing or can
Device, technology or the scheme of row is merely possible to provide for the background describing the present invention,
And therefore it is not intended to recognize that they are the most by commercialization or by except inventor
Outside other people know.
Therefore the abbreviation of selection is defined, in prior art and the following description of the present invention at least
Relate to some of which.
ASIC special IC
CAC Call Admission Control
CRL certificate revocation list
DHCP DHCP
DSL DSL
DVR digital video recorder
HA local agent
FR Foreign Agent
IEEE institute of electrical and electronic engineers
IP Internet Protocol
ISP ISP
NAT network address translation
OS operating system
OSS operations support systems
PC personal computer
PKI PKIX
PS proxy server
RG home gateway
SG SGW
QoS service quality
Tcp transmission control protocol
UID unique identifier
Consumer electronics improve huge in the last few years.They are not only higher than not long ago ability,
And they are the most popular.Many families have the most multiple personal computer and video storage sets
Standby, and much similar equipment.These equipment are commonly connected together to form network,
And can be communicated with other equipment outside family by this network.Can be obtained by this network
Email and the use of telephone service be the most universal, and such as software application and
The download of multimedia transmission is just becoming more frequent.
Home network is useful to user in many aspects.Even if there be no outside family other
The connection of people, home network allows also to user such as from being not directly connected to computer used
Printer prints.Can obtain or another equipment in family sends file, as
Document, picture and video.Modern data memory cell can keep a large amount of audio or video number
According to, and this network allows to obtain this content and broadcasting in the arbitrary equipment be connected to this network
Put this content.Multiple users can participate in game by network.
Generally set by as to the some type of of interface providing any network service accessed
The standby connection promoted outside family.This equipment can take such as to be connected to by multiple computers because of
The router of special net or reception video and TV programme are to show at TV or other videos
The form of the Set Top Box of display on equipment.Even if not being that great majority also have many home networks to be connected
Receiving access network, wherein access network provides link between the family and core net of subscriber, wherein
This core net can process mass communication business and provide gateway to be used for by other networks to enter
Row communication.
When home network is connected to access network, it is allowed to such as Email and the Internet access
Communication;Can be with foradownloaded video and audio content.It addition, nearest technological progress made can
To upload or to be sent to from home network the data volume increase of other equipment through access network.?
In certain situation, for example, at least from user, can download close to film or other videos
Speed sends this film or other videos to other people.
This is highly beneficial for the user of mobile device.As used herein, mobile device is
The equipment of radio communication access to mobile network can be used.Mobile device is due to their mobility
And it is very popular;User can carry with this equipment easily and can connect mobile network
The use Anywhere of network it.Mobile network provider has contracted thousands of subscriber and setting up
Cover the network of vast geographic area.In many positions, if subscriber can not access them certainly
Oneself network, then they can use another network as visitor.The usual base of mobile network
In cell system, wherein mobile device communicates with neighbouring base station, and handoff protocol allows him
To move to another community from a community (base station) ongoing without substantially interrupting
Communication session.
Mobile subscriber in Jia can may such as use the short-range wireless protocol such as bluetooth
Access content and the equipment of the part as home network.But this connects when user stays out
It is disabled for entering, but can access this content in other modes some.Such as, can be via family
The content of front yard network insertion may not be actually stored there, and is stored in by supplier
In the remote memory storage devices safeguarded.In other cases, content can be stored in home network
In network, but be to provide for the purpose of mobile access and to this content at the server of supplier
Carry out replicating or mirror image.In any case, user can be used and be led to by mobile network
The mobile device of letter, accesses the content stored by supplier.
But this strategy has the disadvantage in that.One, the on-site storage of supplier may cause safety
Problem.It addition, supplier may be to service charge, and if there is their service fail
Then they are in the risk sometimes become unavailable.Finally, user currently want and
A large amount of contents that plan needs may make this option more infeasible in future.
Home network can also be directly accessed by the mobile network using such as MobileIP agreement.
In the configuration, it is contemplated that mobile device embody Foreign Agent (FA), this Foreign Agent with by group
The local agent (HA) becoming an equipment in the equipment of home network to embody sets up communication meeting
Words.Although which solving some shortcomings relevant with third-party vendor, but yet suffer from several
Point deficiency.
First, in order to communicate with FA, HA obtains IP address.But in common practice,
Dynamically allocate this IP address, it means that this address is not permanent allocation but final
Another user can be reassigned to.Certainly, HA can ask another IP address, but
It is when distribution Shi GaiIP address, IP address is almost affirmed different from former IP address.Although it is dynamic
The strategy of state distribution IP address has been saved IP address and has reduced the quantity of final needs, but
It is that it may interrupt the route between FA and HA, and mobile device is difficult to its phase
The HA registration answered.
It addition, home network uses residential gateway continually, wherein, this HA is allocated privately owned
IP address and being positioned at after NAT border.This can also contribute to save IP address, but can
FA can be made to be difficult to contact HA and set up the secure tunnel for communication.
In the face of these difficulties, one is needed to be easy to from remote mobile station secure accessing to home network
Mode.Therefore, already and will need to solve with the FA that is embodied in mobile device and
Communicate relevant aforesaid drawbacks and other shortcomings between HA in home network.The present invention is full
These needs of foot and other needs.
Summary of the invention
The present invention relates to a kind of be easy to the method that mobile device is linked into home network.A side
Face, the present invention be one be to include that the mobile device of FA (Foreign Agent) provides to include HA
The method remotely accessed of the home network of (local agent), including: obtain in this HA
UID (unique identifier), registers this HA to SG (SGW), and from this HA
Heart beating is initiated to this SG.In a preferred embodiment, this HA receives for every from this SG
The confirmation message of individual sent heartbeat message.Without receiving confirmation message, then possibility must
The registration of this SG must be re-executed.
This HA UID can generate in this HA self, or can by another element to
HA provides, such as, provided during HA registers by SG or provided by equipment manager.Should
Method can also include preferably when FA is connected to its of this home network or this home network
In an equipment time to HA register.In this aspect, to this HA registration FA can include to
This HA transmits FA UID, transmits this HA UID to this FA, and retains in this HA
Address for this FA.It can also include transmitting FA certificate to this HA, and to this
FA transmits HA certificate.
The method can also include receiving FA access request from SG, it is determined whether to this HA
Have registered this FA, and if do not register this FA to this HA, refuse this access request.As
Fruit have registered this FA to this HA, then the method can also include permitting immediately to access, or
Person limits if there is any access or bandwidth, first determines which accesses or bandwidth restriction can
It is applied to this FA or can be applicable to the transmission to and from this home network.
In yet another aspect, the present invention is a kind of local agent used in home network, bag
Include: processor;This processor is accessible to store data and the memory devices of programmed instruction;
For safeguarding the SG Register of the registration of available SG;For generating after registering to SG
The heartbeat message maker of heartbeat message;And it is allowed to access this home network for safeguarding
The FA Register of the registration of FA.
A part for the additional aspect of the present invention by detailed description below, accompanying drawing and is arbitrarily weighed
Profit illustrates in requiring, and a part will draw from this detailed description or can pass through this
The learning by doing of invention arrives.It is appreciated that overall description above with detailed description below is all
Exemplary, and be merely exemplary rather than restriction for disclosed invention.
Accompanying drawing explanation
When combining accompanying drawing with reference to detailed description below, it is possible to obtain for the present invention more
Complete understanding, wherein:
Fig. 1 shows the selected assembly of the home network according to an embodiment of the invention
Rough schematic view;
Fig. 2 shows the selected assembly of the communication network according to an embodiment of the invention
Rough schematic view;
Fig. 3 shows the flow chart of the method according to an embodiment of the invention;
Fig. 4 shows the flow chart of the method according to an embodiment of the invention;
Fig. 5 shows the flow chart of the method according to an embodiment of the invention;And
Fig. 6 shows the letter of the selected assembly of the HA according to an embodiment of the invention
Change schematic diagram.
Detailed description of the invention
The present invention relates to a kind of mode that home network is expanded to remote-moving apparatus, and work as
It is implemented in and is subject to Dynamic link library point and the NAT (network of the Internet with communicating of home network
Address is changed) in the environment of the restriction on border time advantageous particularly.Fig. 1 shows according to this
The rough schematic view of the selected assembly of the home network 100 of a bright embodiment.It should be noted that
Home network is because used assembly by so address and is suitable to be obtained by subscriber and be in
Middle use, but identical system can similarly easy be installed to such as small enterprise, school
Or in church's office environment.For convenience's sake, this network will be referred to as home network, and
No matter whether it is installed in the house of single subscriber or in another position.
Each assembly of home network can the most at home (or other install
Position) communication, but the most this situation.Communication with external equipment is typically
Found a family one of reason of network.In the embodiment of figure 1, home network 100 includes
RG (residential gateway) 105.RG 105 is easy to home network 100 and (not shown in Fig. 1)
Communicate between access network.This access network then provides core communication network and arrives it subsequently
His network and pipeline of equipment (see such as Fig. 2).
In the embodiment of figure 1, RG 105 is also used as router to receive from outward
The communication in portion, and send them to the various assemblies of network 100.In this embodiment,
These assemblies include PC 110 and related media storage device 115.By home network 100
Also can obtain as by the telephone service represented by phone 140.Set Top Box 120 is also home network
The part of 100, and be associated with DVR 125.In this embodiment, network 100
Also include phone 130 and kneetop computer 135.As shown in Figure 1, by cable by network 100
Many assemblies be connected to RG 105, and kneetop computer 135 uses wave point.Certainly,
This concrete combination (although the rarest) of assembly is exemplary, and can be to other families
Network is configured differently.
According to the present invention, home network 100 also includes HA (local agent) 150, and it has
The multiple functions being described herein.HA 150 is typically implemented as performing as software
The concurrent physical processor of the instruction being stored in non-state medium.In other embodiments, may be used
HA to be embodied as the combination that can perform software with the hardware of such as ASIC.HA can be
Independent equipment or merge with the multi-function device also performing other tasks.Realize at some
In, it such as can be realized in RG 105 or PC 110.
According to this embodiment of the present invention, HA 150 obtains the UID that can be used for communication session
(unique identifier), this communication session relates to the FA being authorized to access this home network.Can
To carry out this acquisition with various ways;In one embodiment, HA such as uses processor
Serial number simply generate the UID of its own.In another embodiment, HA uses
UID in OS (operating system).In any one situation, UID obtains scheme should be true
Protect the uniqueness of this UID.Can also by another element generate UID, for example, it is possible to
SG (SGW;See the example of Fig. 2) registration time distribution UID.If by another yuan
Part generates, then it preferably should be stored in accessible storage by HA in an encrypted form
In device equipment.
Fig. 2 shows the selected of the communication network 200 according to an embodiment of the invention
The rough schematic view of assembly.It should be noted that communication network 200 actual include multiple network (or
More precisely, the assembly in those networks, without individually showing those assemblies).Remove
Outside further depict HA 150 in fig. 2 such as RG 105, home network 100 shown
For such as cloud (but having carried out more detailed display in FIG).RG 105 is by home network
Network 100 is connected to access network 210.Access network can e.g. PSTN or PON (passive light
Network) in DSL realize.Access network 210 provides the connection of core net 220 then.
Typically, core net 220 be for include home network 100 multiple different entities it
Between via access network 210 route communication Large Copacity packet data network.
In this embodiment, core net 220 such as communicates with the Internet 240, to home network
Network 100 provides the Internet to access.It is also possible to there are one or more nets that seam uses
Pass equipment, but for simplicity, the most individually show these assemblies.But
Individually show SGW (SG) 225 and proxy server (PS) 230.These equipment
In each (or both) can be the software performed on single physical unit, or can
To use multiple physical equipments of collaborative work to realize.It is described below according to this of the present invention
The operation of a little assemblies.
In the embodiment of Fig. 2, core net 220 is further attached to mobile network 250.Move
Dynamic network 250 typically comprises the most scattered a large amount of base station, and each base station has its own
Antenna in case with the mobile device communication in their local zone.Retouch for illustrative purposes
Paint antenna/base station 255.Antenna/base station 255 can include such as eNodeB.Also show
Mobile device 260, and mobile device 260 can be carried out and the channel radio of antenna/base station 255
Letter is to set up communication session by mobile network 250.Although only show one, but mobile
Network generally includes a large amount of antenna/base station, and application is used for communicating when mobile device migrates
Session is switched to the agreement of another antenna/base station from an antenna/base station.
In embodiments of the present invention, mobile device 260 includes FA (Foreign Agent) 265,
FA 265 can register to HA 150 to access home network 100.According to the present invention, logical
Cross SG 225, mobile device 260 FA 265 and home network 100 HA 150 it
Between set up safe communication path or passage.This process be will be explained in further detail now.
Fig. 3 shows the flow chart of the method 300 according to an embodiment of the invention.
Assuming to perform assembly necessary to the method in beginning is available and can be according to the present invention
Operate.Then when HA receives registration request, this process starts (step 305).Root
According to the present invention, this registration request initiates the registration process for mobile device, thus it can be from
Remote location accesses home network.In this embodiment, it is necessary to complete this from not remote position
Registration process, the i.e. simultaneously element of mobile device actually home network or be connected directly
Element to home network.
Such as, mobile device can be directly connected to HA via USB connection or be connected to
PC as the element being in identical home network with HA.At mobile device and HA
Between short-range wireless protocol such as WiFi can also be used to connect, or Femto cell net
RAN agreement in network.It should be apparent that home network is preferably used local password, close
Key or cryptographic protocol avoid enough near-earths to carry out operating directly communicating with this home network
Hacker registers.
In the embodiment of fig. 3, the UID of movement station FA is then passed to HA (step
, and be stored in suitable memory devices rapid 310).Also transmit the pair of FA certificate
This (step 315).Then HA is preserved for the address (step 320) of FA.This IP
Address will be the virtual ip address used by FA when being entered in home network by tunnel.?
In one embodiment, when one group of home network IP address of initial offer, HA is for this purpose
Receive this address.In another embodiment, HA can such as by with on RG
Dynamic Host Configuration Protocol server communicates, the establishment of each FA request address being registered with.
In the embodiment of fig. 3, to the UID (step 325) of FA transmission HA, and
And in most cases, also transmit the copy (step 330) of HA certificate.So
Just have registered FA, in order to access home network from remote location.Will be explained in further detail now
This process.
Fig. 4 shows the flow chart of the method 400 according to an embodiment of the invention.
Assuming to perform assembly necessary to the method in beginning is available and can be according to the present invention
Operate.Then when HA sends registration message to SG, this process starts (step 405).
This registration message will include the UID of HA.As it has been described above, many home networks are by NAT
The protection on border.In many cases, the unsolicited message from FA will not pass through RG biography
Pass.The present invention allows home network to keep NAT border, simultaneously facilitates mandate mobile device and leads to
Cross NAT border to access.
In this embodiment, after sending (and receiving in SG) registration message,
Perform authentication protocol (step 410).In a preferred embodiment, this certification include HA with
Two-way certification authentication between SG, from trusted parties, (such as common root or intermediate certificate are issued in utilization
Send out mechanism) PKI that obtains and certificate template.Further preferably the most arbitrarily demonstrate,prove for crl checking
Book issuing organization is invaded.Use two-way certification authentication will avoid must providing still to SG
HA or Additional servers.However, it should provide SG on local agent in a secured manner
Shared virtual ip address.Definite program for checking will depend in some extent
How HA disposed and manage, if not and being expressly recited no in a specific embodiment
Then the present invention need not concrete authentication method.
In the embodiment illustrated in fig. 4, after successfully completing authentication procedure, HA receives
Accreditation verification (step 415).It is assumed here that registration process is not successfully complete;If
Not success, then HA can attempt again registering or notify user's (not shown), as
Desired by implementing.If HA is managed device, then it can notify equipment
Manager registers unsuccessful (also not showing).But will until completing to register method 400
Will not advance.
In this embodiment, after confirming successful registration, HA initiates registration heart beating (step
Rapid 420).The periodic sequence of the TCP packet that this heart beating preferably sends to SG from HA,
To guarantee safeguarding this TCP flow in the NAT table of home network.Each heart beating is disappeared
Breath, HA expectation receives confirmation (step 425).If this occurs, then this process is simple
Be continued until by any one equipment terminate registration till (not shown).If HA does not has
Receive the confirmation for specific heartbeat message, then this process returns to step 405 and again
Initiate registration process.
Certainly, this assumes to remain desirable to registration.If being not intended to remote mobile for some reason
Equipment accesses, and the most naturally need not permanent maintenance of HA and registers.Such as, if it have detected that
Problem and subscriber or true for managing the equipment manager (if applicable words) of this HA
Surely should hang up this access until this problem be solved, then this it may happen that.It should be noted that
If it is necessary that register HA with new SG, then can preferably transmit existing registration and (not show
Show) rather than simply terminate this registration and force HA to re-register to new SG.Also
It should be noted that for some operations to bandwidth sensitive, the link set up by SG can be passed
It is delivered to PS (also not showing).In this case, this registration is the most transferable.
Fig. 5 shows the flow chart of the method 500 according to an embodiment of the invention.
When starting, assembly necessary to hypothesis execution the method is available and can be according to the present invention
Operate.It is further assumed that the HA in home network (is such as embodied in mobile device to FA
In FA) accessible SG registration.Then, when HA receive request with initiate HA with
During communication session between FA, this process starts (step 505).When such as using embodiment FA
The mobile subscriber of equipment desire access to home network in case obtain stored therein interior perhaps
Person performs some and controls or during function for monitoring, this it may happen that.Typically, will connect from SG
Receive the request from the FA in remote-moving apparatus, wherein contacted this SG to connect by FA
HA.But in some interchangeable embodiments, access request can come from home network
In self or from another external network element.
In the embodiment illustrated in fig. 4, HA the most such as according to the registration process shown in Fig. 3,
Checking registers this FA (step 510) to HA.If correctly do not register FA to HA,
Then refuse this communication session request (step 515).It may alternatively send message (step
Rapid 520) to notify that to SG the access of home network will be not allowed to.This message can be wrapped
Include the unaccepted reason of access or be included in the invitation that later time retries.It is assumed that SG
Refuse information will be forwarded to FA or change into generating similar message for transmission (not shown).
In this embodiment, if correctly have registered FA, then this HA determines (step
525) which should allow access (if present) for this concrete FA.It should be noted that
It is made without between FA distinguishing, concrete FA is not limited to incomplete home network and connects
Enter.But implementation when wishing with the presence of this.HA also determines that (step 530) can answer
Which bandwidth to limit (if present) by.Such as, user may wish to remote mobile
Equipment upload multimedia presents, but this is likely to be due to current service conditions or by home network
Or access network apply restriction and be not allowed to.In a preferred embodiment, step 530 is really
Surely include that receiving applicable bandwidth from SG limits.
In the embodiment illustrated in fig. 4, HA is then according to the access request received with in step
The restriction (if present) that 525 and 530 determine, it is allowed to access (step 535).At HA
And set up secure tunnel between SG, by this secure tunnel and built between SG and FA
Vertical tunnel is linked, and sets up the peace for being accessed home network by FA by which
Full communication session.It should be noted that the heartbeat message preferably continued between HA and SG and confirmation
(see Fig. 4), thus communication session is not surprisingly terminated.
Returning Fig. 4, this communication session is continued until (step 540) till being terminated.Work as example
When being no longer necessary to be linked into home network such as mobile device, can be with executive termination.Terminate other
Reason can include initiating getting rid of access higher priority communication, find safety problem or pre-
Restriction of fixing time expires.Such as can be desired with similar access by must be accommodated in the identical time
The access network of many users apply this restriction.Home network can be accessed as being used for subscriber
The factor that considers of speed plan, and can be according to the restriction termination meeting applied by speed plan
Words.
It should be noted that the order of the operation above with reference to given by Fig. 3 to Fig. 5 is exemplary,
And the invention is not restricted to illustrated embodiment.Additional operation can be increased, or at some
Situation can be removed additional operation, without departing from the spirit of the present invention.Furthermore it is possible to
Operation according to the method shown in the most consistent order execution.
Fig. 6 shows the selected assembly of the HA 600 according to an embodiment of the invention
Rough schematic view.In this embodiment, HA 600 includes for controlling in HA 600
The processor 605 of other assemblies and memory devices 610, memory devices 610 storage is used
In both data and the programmed instruction that control HA 600.Memory devices as used herein
Implicit physics non-transient state device.Individually show UID memory devices 615, UID memorizer
Equipment 615 for storing HA's the most in an encrypted form when obtaining the UID of HA
UID.FA registration table 620 is safeguarded to the registration of the FA of HA 600 registration, including them
Respective UID and certification certificate.FA registration table 620 can also store can be applicable to each
The access of registration FA limits or privilege (if present).SG ground safeguarded by SG table 625
Location and the registration of safety information, in order to SG is to register in contact, and when licensing remote connects
Fashionable foundation is for the secure tunnel of remote-moving apparatus communication session.
In this embodiment, HA 600 also includes connecing for the network plugged into home network
Mouthfuls 630 and for plugging into carrying out inquiring about and receive the user for the specification of HA operation
User interface 635.For this purpose it is proposed, user interface 635 may be connected to such as keyboard and
Indicator screen.Heart beating maker 640 generates heartbeat message to maintain HA 600 upon registration
And the TCP flow between SG.
It should be noted that HA 600 is an exemplary embodiment, and other of the present invention
Embodiment is feasible.For example, it is possible in other embodiments by some of HA 600
Assembly is combined, or segments the most further.Furthermore it is possible to will
HA 600 realizes in independent physical equipment or is merged in other network elements,
The such as PC 110 or RG 105 shown in Fig. 1.
In this way, the present invention is easy to by the remote mobile of the FA having to HA registration
Equipment is linked into the home network using this HA.Safety can be set up between FA and SG
Tunnel, and if access be allowed to, then by this secure tunnel and build between HA and SG
Vertical tunnel link.
Although having been illustrated with in the accompanying drawings and detailed description above having been described with
Multiple embodiments of the present invention, it should be appreciated that the invention is not restricted to disclosed embodiment party
Formula, but without departing from as set forth in the appended claims and the premise of the present invention that defines
Under, it is possible to carry out heavily joining, revise and replacing in a large number.
Claims (13)
1. one kind is to include that the mobile device of FA (Foreign Agent) provides to include HA (this
Ground agency) the method remotely accessed of home network, described method includes:
Obtain the UID (unique identifier) in described HA;
The SG (SGW) accessible to described FA registers the described of described home network
HA, wherein registration includes sending registration message from described HA to described SG, and described registration disappears
Breath includes described UID;
Initiate from described HA to the heart beating of described SG.
Method the most according to claim 1, is wherein generated described UID by described HA.
Method the most according to claim 1, wherein connects from described SG in described HA
Receive described UID.
Method the most according to claim 1, also includes registering described FA to described HA.
Method the most according to claim 4, wherein not remote ground performs described FA registration.
Method the most according to claim 4, wherein registers described FA bag to described HA
Include:
FA UID is transmitted to described HA;
Described HA UID is transmitted to described FA;And
The address of described FA it is preserved in described HA.
Method the most according to claim 6, wherein registers described FA also to described HA
Including:
FA certificate is transmitted to described HA;And
HA certificate is transmitted to described FA.
Method the most according to claim 1, also includes:
FA access request is received from SG;
Determine whether that described HA have registered described FA;And
If not registering described FA to described HA, then refuse described access request.
Method the most according to claim 8, also includes:
If have registered described FA to described HA, then permit to access.
Method the most according to claim 8, also includes:
Determine that described FA can be licensed the degree accessing described home network.
11. methods according to claim 9, also include:
Limit if there is any bandwidth, it is determined that can be applicable to from described home network to described
The bandwidth uploaded of HA limits.
12. methods according to claim 11, also include:
If have registered described FA to described HA, then extend the deadline in any access determined or band
Under conditions of system, access is permitted.
13. methods according to claim 1, also include:
Confirm, then from described HA to described without receiving the expectation for heartbeat message
SG sends registration message.
Applications Claiming Priority (5)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US31655310P | 2010-03-23 | 2010-03-23 | |
US61/316,553 | 2010-03-23 | ||
US12/985,730 US8572246B2 (en) | 2010-03-23 | 2011-01-06 | Method and apparatus for home network access |
US12/985,730 | 2011-01-06 | ||
PCT/US2011/029028 WO2011119435A1 (en) | 2010-03-23 | 2011-03-18 | Method and apparatus for home network access |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102812773A CN102812773A (en) | 2012-12-05 |
CN102812773B true CN102812773B (en) | 2016-08-17 |
Family
ID=44656412
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201180015395.7A Active CN102812773B (en) | 2010-03-23 | 2011-03-18 | The method and apparatus accessed for local network |
Country Status (4)
Country | Link |
---|---|
US (2) | US8572246B2 (en) |
EP (1) | EP2550836B1 (en) |
CN (1) | CN102812773B (en) |
WO (1) | WO2011119435A1 (en) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20130003653A1 (en) * | 2011-06-30 | 2013-01-03 | Alcatel-Lucent Usa Inc. | Method And Apparatus For Facilitating Home Network Access |
AU2012345724B2 (en) * | 2011-11-30 | 2016-10-06 | Ulterius Technologies, Llc | DVR module for system having a gateway |
CN103442224A (en) * | 2013-09-09 | 2013-12-11 | 杭州巨峰科技有限公司 | NAT penetration-based video monitoring access strategy and realization method |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2008078633A1 (en) * | 2006-12-27 | 2008-07-03 | Panasonic Corporation | Communication system, domain managing device, edge device and mobile terminal device |
US20100054133A1 (en) * | 2007-03-05 | 2010-03-04 | Panasonic Corporation | Loop Detection For Mobile IP Home Agents |
Family Cites Families (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6560217B1 (en) * | 1999-02-25 | 2003-05-06 | 3Com Corporation | Virtual home agent service using software-replicated home agents |
US6711147B1 (en) * | 1999-04-01 | 2004-03-23 | Nortel Networks Limited | Merged packet service and mobile internet protocol |
JP4724928B2 (en) * | 2001-02-27 | 2011-07-13 | ソニー株式会社 | Wireless transmission apparatus and wireless transmission method |
US7173905B1 (en) * | 2001-08-02 | 2007-02-06 | Utstarcom, Inc. | PDSN fast tunnel lookup |
JP4804672B2 (en) * | 2001-08-29 | 2011-11-02 | 富士通株式会社 | Mobile IP network system |
US7818409B2 (en) * | 2002-01-22 | 2010-10-19 | Alcatel-Lucent Usa Inc. | Dynamic virtual private network system and methods |
US20040109459A1 (en) * | 2002-07-25 | 2004-06-10 | Lila Madour | Packet filter provisioning to a packet data access node |
JP2005020286A (en) * | 2003-06-25 | 2005-01-20 | Matsushita Electric Ind Co Ltd | Network management device, portable terminal, network system and communication method using the same |
US20060155850A1 (en) * | 2003-11-25 | 2006-07-13 | Matsushita Electric Industrial Co., Ltd. | Networked mobile EPG service architecture |
EP1712058A1 (en) * | 2004-02-06 | 2006-10-18 | Telecom Italia S.p.A. | Method and system for the secure and transparent provision of mobile ip services in an aaa environment |
JP2007067713A (en) * | 2005-08-30 | 2007-03-15 | Fujitsu Ltd | Home agent and mobile node |
US7680123B2 (en) * | 2006-01-17 | 2010-03-16 | Qualcomm Incorporated | Mobile terminated packet data call setup without dormancy |
US8346225B2 (en) * | 2009-01-28 | 2013-01-01 | Headwater Partners I, Llc | Quality of service for device assisted services |
CA2742609A1 (en) * | 2008-11-26 | 2010-06-03 | Telefonaktiebolaget L M Ericsson (Publ) | Queuing mechanisms for lte access and sae networks enabling end-to-end ims based priority service |
-
2011
- 2011-01-06 US US12/985,730 patent/US8572246B2/en active Active
- 2011-01-07 US US12/986,706 patent/US20110235579A1/en not_active Abandoned
- 2011-03-18 EP EP11711416.5A patent/EP2550836B1/en active Active
- 2011-03-18 CN CN201180015395.7A patent/CN102812773B/en active Active
- 2011-03-18 WO PCT/US2011/029028 patent/WO2011119435A1/en active Application Filing
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2008078633A1 (en) * | 2006-12-27 | 2008-07-03 | Panasonic Corporation | Communication system, domain managing device, edge device and mobile terminal device |
US20100054133A1 (en) * | 2007-03-05 | 2010-03-04 | Panasonic Corporation | Loop Detection For Mobile IP Home Agents |
Also Published As
Publication number | Publication date |
---|---|
WO2011119435A1 (en) | 2011-09-29 |
EP2550836A1 (en) | 2013-01-30 |
US8572246B2 (en) | 2013-10-29 |
CN102812773A (en) | 2012-12-05 |
US20110235579A1 (en) | 2011-09-29 |
US20110238833A1 (en) | 2011-09-29 |
EP2550836B1 (en) | 2015-12-30 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP1679843B1 (en) | Security group management system | |
US8954741B2 (en) | Apparatus and method for supporting family cloud in cloud computing system | |
CN102137395B (en) | Method, device and system for configuring access device | |
KR100494558B1 (en) | The method and system for performing authentification to obtain access to public wireless LAN | |
US9241001B2 (en) | Method and apparatus for providing service using personal network | |
US7370112B2 (en) | Communication scheme using outside DTCP bridge for realizing copyright protection | |
US20060173846A1 (en) | Access information relay device, a network device, an access information managing device, a resource managing device, and an access control system | |
CN103503378B (en) | For the method and apparatus accessed by the home network of credible monitoring agent | |
US20120331286A1 (en) | Apparatus and method for providing service to heterogeneous service terminals | |
EP2547133B1 (en) | Method and equipment for authenticating subscriber terminal | |
JP4357339B2 (en) | Wireless communication system, access point, and wireless communication method | |
JP2010510568A (en) | Resource transmission method and information providing method | |
CN102812773B (en) | The method and apparatus accessed for local network | |
KR101969165B1 (en) | System and Method for Managing Home Network Based on Wallpad | |
CN102075567B (en) | Authentication method, client, server, feedthrough server and authentication system | |
CN102883265A (en) | Method, equipment and system for sending and receiving position information of access user | |
KR101709159B1 (en) | A method for service wireless data communication using IP and an apparatus thereof | |
US20130086218A1 (en) | Proxy Server For Home Network Access | |
JP2006121728A (en) | Communication system, mobile terminal device, gateway device, and communication control method | |
JP2011239152A (en) | Wireless communication system and terminal management method | |
US20130003653A1 (en) | Method And Apparatus For Facilitating Home Network Access | |
KR101719295B1 (en) | Messaging service system and method thereof | |
JP2005142842A (en) | Access managing system and access manager | |
JP2011019125A (en) | Communication controller, communication control method and communication control program | |
JP2015031989A (en) | Software module execution equipment and software module execution program |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant |